local policy

[Aleks Kleyn]

In windows Vista I can see local security setting. However any attempt to
change it creates an error. I discovered that even administrator does not
have rights to change this setting. This looks very strange. Very often I
see problems which depends on local policy.
Aleks Kleyn

 

[Aleks Kleyn]

In windows Vista I can see local security setting. However any attempt to
change it creates an error. I discovered that even administrator does not
have rights to change this setting. This looks very strange. Very often I
see problems which depends on local policy.
Aleks Kleyn

 

[Rick Rogers]

Hi,

You have to run the local security snap-in as admin (right click/run as
administrator), not from an admin account.

--
Best of Luck,

Rick Rogers, aka "Nutcase" - Microsoft MVP

Windows help - www.rickrogers.org

 

[Aleks Kleyn]

Yes, I do it. It asks my permission to eliviate my level. I do it. I can see
context, but I cannot change settings.
The same time I can see some changes which I did not athorised. It looks
like hacker can have more control over PC then me.
Aleks Kleyn

 

[Rick Rogers]

If you're in a domain, you still may not have access.

--
Best of Luck,

Rick Rogers, aka "Nutcase" - Microsoft MVP

Windows help - www.rickrogers.org

 

[Aleks Kleyn]

This is not answer to my question. If security gives hacker more rights then
me why I then this is void security or security for hacker.
Aleks Kleyn

 

[Rick Rogers]

Why do you think a hacker will have more access than you? They would only
have the same level of privilege of the hacked account.

--
Best of Luck,

Rick Rogers, aka "Nutcase" - Microsoft MVP

Windows help - www.rickrogers.org

 

[Aleks Kleyn]

Here is few points.
I think hackers are smart guys. They will find way to bypass UAC. But me to
kill there application need at least time to answer question to allow
eliviate my account.
Yesterday kids using XP were not able to see my PC. I was not able to see
their. I see strange in network map: I connected to network through unknown.
In local policy I was member of domain, but I was not able to edit it.
Few ours later I was able to see their PC. Today I discovered that domain
group in local policy is empty. Your comment? It is not clear why me as user
cannot fix this problem.
Aleks Kleyn

 

[Rick Rogers]

Hi Aleks,

To bypass UAC, they'll have to get you to agree to install whatever
malicious software they are providing. That's the whole point, it's no
longer possible for them to install without the user's permission. And, to
top it off, they can't get admin level without you specifically executing
the file with elevated privileges.

As to the oddities seen in your home network, that has naught to do with
UAC, as the ability to view and access files on a machine is based on a set
of permissions and share settings, not in UAC.

--
Best of Luck,

Rick Rogers, aka "Nutcase" - Microsoft MVP

Windows help - www.rickrogers.org

 

[Aleks Kleyn]

In theory you are right and i appreciate UAS. However some time will pass
until it work as we expect.
Look in 2001 when microsoft introduced dotnet I warn then that they should
change antivirus software. If they designed XML to bypass firewall then
somebody will be able to do it to control remotly my PC. At that time nobody
cared, however it was realized when it was late. If you want to be on time
you shoud go ahead of hacker. Nobody ask me permition to set cockie, but
everybody knows that half of the cockies is spyware. You yourself mentioned
that somebody can easy try to setup program on my PC. Does system ask me
permition. I do not think. Last week I set up real player. It is fine. It
ask me to allow. But this is not the end of the story. Next evening software
which I did not set up appeared on my PC. It was clear that this was the
part of real player. But nobody asked me permition. I think the story is
clear. I do not tell that it is very easy to make setup without any
question.
Aleks Kleyn